Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a37653a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a37653a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: 9QA8TbCWHAizHhHaJjvDGtOhoJRVOL+bcp15qoDO85M=
Subject key identifier: DA:24:3A:9D:41:AD:21:E2:4B:F5:E6:E3:36:AD:E3:69:DB:7C:71:83
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 37A8D7CC6B0633698FA87EDAE856ACCDFBA4AEB1
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a37653a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:01:39 +0000
ROA not before: Mon 26 Sep 2022 07:56:39 +0000
ROA not after: Mon 25 Sep 2023 08:01:39 +0000
asID: 59282
IP address blocks: 2400:d680:7e::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
37:a8:d7:cc:6b:06:33:69:8f:a8:7e:da:e8:56:ac:cd:fb:a4:ae:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:56:39 2022 GMT
Not After : Sep 25 08:01:39 2023 GMT
Subject: CN=DA243A9D41AD21E24BF5E6E336ADE369DB7C7183
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:96:03:9b:cd:64:14:c6:82:31:02:f7:95:3c:
3c:6d:ff:ed:43:1a:2e:bc:72:34:1a:ea:2d:b5:c7:
e8:c2:d1:1d:77:6e:fe:51:0a:19:3e:d1:d8:b7:fa:
d5:cc:f0:d4:4a:12:f8:97:2f:c2:cd:ab:3f:16:84:
34:98:d3:01:b0:e2:01:89:cd:c9:41:83:99:a4:bf:
e4:73:81:2b:9d:34:46:75:81:ba:c9:d3:8a:59:d3:
98:81:6c:81:e7:2d:d8:e7:17:85:4b:5f:54:0d:d7:
d6:bd:bd:7d:ad:1d:95:70:80:43:f0:ee:7f:9c:64:
02:e8:4e:70:1e:6f:84:d2:27:85:db:8f:70:65:c5:
ac:23:c9:25:b2:51:f1:2c:d5:17:99:8b:d8:44:64:
18:6c:60:3d:2e:2f:82:58:43:07:a3:ec:ec:3e:f1:
fc:cf:19:e4:93:9d:6c:17:22:16:1f:9c:1f:a5:67:
47:46:d3:60:be:9b:ef:ce:f7:8c:2d:b4:7b:03:61:
d3:b3:81:c6:8b:6d:be:a2:00:d6:cd:a1:17:42:4a:
e6:11:57:7b:94:d8:92:95:58:2d:13:61:11:a5:37:
c5:5e:16:bb:d5:75:c2:05:90:93:de:23:ce:6f:95:
8d:77:24:8e:77:f1:62:19:ac:3a:8b:9d:cc:7e:6a:
21:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:24:3A:9D:41:AD:21:E2:4B:F5:E6:E3:36:AD:E3:69:DB:7C:71:83
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a37653a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:7e::/48
Signature Algorithm: sha256WithRSAEncryption
07:6c:5f:31:1d:34:11:6d:09:c9:6a:f0:85:ac:e5:7c:ba:2c:
a8:75:3d:0a:02:9d:03:c2:4d:6e:95:6a:ad:ad:ca:02:d5:48:
1e:20:7d:84:98:7e:0e:bc:99:75:2c:47:7c:ee:30:ac:74:46:
ef:ec:a4:88:d5:a0:a3:9a:42:f5:ca:8f:60:de:ed:fe:e1:b4:
4b:16:9b:f5:aa:8d:f2:af:c9:03:5a:7e:92:52:e6:82:47:1e:
74:80:d8:c1:bf:0f:35:39:d9:64:42:ca:8b:38:f0:d9:ba:35:
43:f9:d1:94:15:4a:b0:c4:20:54:92:e4:66:69:86:9a:ed:cd:
fb:34:39:bb:9a:0a:1a:b6:f6:f6:0f:bd:82:3f:02:4e:a7:f6:
53:08:9b:fa:e9:20:cb:50:e2:70:c3:76:e3:12:ef:c7:71:8c:
af:f7:33:7c:24:c8:f4:85:46:cb:11:36:d5:0a:b0:a0:c8:79:
95:ed:6f:b8:7a:ba:89:bd:34:da:a5:6e:69:5f:c7:7a:9a:a6:
36:bc:e1:3c:17:e1:b0:b2:4a:a1:06:ec:d6:85:10:74:c4:a2:
96:a2:c6:5b:41:5d:a0:29:9a:4e:58:9f:68:27:c2:47:fe:8f:
27:6d:c4:2f:98:b0:4e:7f:8c:2a:8b:df:58:5f:21:4c:e6:79:
4d:4d:38:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:15 2024 by rpki-client on console-fra.rpki-client.org